384 Vulnerability Jobs - Page 8

You ll have the opportunity to: Evaluate and oversee the implementation of innovative technologies aimed at improving the efficiency, performance, and reliability of the Lytx Infrastructure. Engage with innovative technologies such as OpenShift, Kubernetes, MQTT, and Kafka. Implement new systems and frameworks to bolster a global IoT platform and elevate it to the next level. Develop and deliver innovative solutions that empower engineering teams. Propel and execute enhancements in capacity, reliability, availability, monitoring, and performance of core and supporting systems. Fulfill other assigned duties. What You Need: A bachelors degree with a technical major or equivalent experience. At least 7+ years of experience in designing, building, and supporting Infrastructure Architecture, CI/CD, and production operations within a hybrid On-Premises/Cloud environment. Expertise in DevOps principles, practices, and technologies, including GitOps, Amazon Web Services (AWS), and Terraform, or other Infrastructure as Code (IaC) tools. Proficiency in building CI/CD pipelines, with preference given to experience with GitHub and ArgoCD. Proficiency in managing Kubernetes and various container and cloud-native technologies. Proven experience in security best practices, including identity and access management, encryption, and vulnerability assessments. Strong knowledge of containerization technologies such as OpenShift, Kubernetes, and Docker. Expertise in scripting/automation using tools like PowerShell, BASH, Python, Perl, Ansible, and Terraform. Knowledge of Systems Administration/System Engineering with Microsoft Windows/Linux. Familiarity with networking concepts such as routing, load balancing, DNS, content delivery, and domain trusts. Excellent documentation and interpersonal skills, with the ability to present technical content to management and engineering teams. Hands-on experience with AWS compute and storage services including EKS, ECS, Lambda, EC2, MSK, AMIs, Redshift, Kinesis, RDS, DynamoDB, ElastiCache, S3, and Glacier. Collaborate with engineering teams to enhance their productivity, ensure they operate on reliable and scalable systems, and advocate for best practices, including GitOps principles. Innovation Lives Here You go all in no matter what you do, and so do we. At Lytx, we re powered by cutting-edge technology and Happy People. You want your work to make a positive impact in the world, and that s what we do. Join our diverse team of hungry, humble and capable people united to make a difference. Together, we help save lives on our roadways. Find out how good it feels to be a part of an inclusive, collaborative team. We re committed to delivering an environment where everyone feels valued, included and supported to do their best work and share their voices. Lytx, Inc. is proud to be an equal opportunity/affirmative action employer and maintains a drug-free workplace. We re committed to attracting, retaining and maximizing the performance of a diverse and inclusive workforce. EOE/M/F/Disabled/Vet.

Skills & Experience . This role would suit someone with a good depth of experience gained as a Java Developer, as well as the following. Bachelors degree in Computer Science, Engineering, or a related field. 3+ years of experience in software development, with a focus on Java and Spring Boot. Strong understanding of microservices architecture and design patterns. Hands-on experience in implementing DevSecOps practices, including security testing, vulnerability scanning, and code analysis is a plus. Proficiency in Jenkins for continuous integration and deployment. Experience with AWS/Azure cloud platforms and services. Familiarity with containerisation technologies such as Kubernetes and Docker. Strong problem-solving and troubleshooting skills. Excellent communication and collaboration abilities. Self-motivated and able to work independently as well as in a team. Duties and Responsibilities. Collaborate with cross-functional teams to design, develop, and deploy microservices using Java and Spring Boot. Implement DevSecOps practices and ensure the integration of security and compliance requirements throughout the development lifecycle. Work closely with the infrastructure and operations teams to automate the deployment and management of applications using Jenkins, AWS/Azure, Kubernetes, and Docker. Continuously improve and optimize the performance, scalability, and reliability of microservices and related infrastructure. We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad. We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location). From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered. Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach. About Allianz Technology. Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 13,000 employees located in 22 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry. We oversee the full digitalization spectrum from one of the industrylargest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age. D&I statement. Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life. Join us. Let\u00B4s care for tomorrow.

About the Role The Senior Software Engineer on the Vulnerability Coverage team will play a pivotal role in expanding the Rapid7 coverage portfolio to provide customers with reliable and accurate data. A Senior Software Engineer will help to drive technical excellence by improving automation frameworks, enhancing coverage release pipelines, and contributing to growth and prioritization in an ever-evolving security landscape. In addition to hands-on development, they will collaborate closely with cross-functional teams, mentor engineers, and contribute to roadmap planning. In this role, you will: Build, maintain, and release high-quality vulnerability content Build, maintain and release new services and plugins for generating new vulnerability content Be involved in improving our automation pipeline for recurring coverage Partner with technical leaders and other team members to drive improvements with our vulnerability coverage portfolio Provide mentoring and coaching to junior engineers The skills you'll bring include: A minimum of 5-6 years experience in software development with Python Experience working with Java and Ruby is a plus Experience with Cloud based deployments eg AWS / GCP / Azure Experience with IaC eg Terraform / Ansible Experience with virtualization and containers Familiarity with CI/CD pipelines such as Jenkins and proficiency with version control systems such as GitHub BEng, BSc or related technical field Ability to organize and drive a project within the team Excited by technology, curious and eager to learn, with the ability to mentor junior team members The attitude and ability to thrive in a high-growth, evolving environment Collaborative team player who has the ability to partner with others and drive toward solutions Strong creative problem solving skills Solid communicator with excellent written and verbal communications skills both within the team and cross functionally Experience with cloud services and infrastructure such as AWS would be advantageous About Rapid7 At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. we'do this by embracing tenacity, passion, and collaboration to challenge what s possible and drive extraordinary impact. Here, we're building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever s next. Join us and bring your unique experiences and perspectives to tackle some of the world s biggest security challenges. Security and Compliance Rapid7 is committed to keeping customers secure. As a first line of defense, all employees are expected to uphold the highest standards of security and privacy, ensuring the protection of sensitive information and compliance with relevant regulations.

Design, develop, and maintain ServiceNow applications and workflows to enhance our Developer Experience platform Architect and implement innovative solutions to streamline Developer Experience processes and eliminate manual work Create and optimize ServiceNow integrations with existing tools and systems in our software delivery pipeline Conduct vulnerability assessments and implement security enhancements within the ServiceNow environment Perform root cause analysis on incidents, providing detailed documentation and actionable insights to development teams Develop and maintain comprehensive technical documentation for all custom ServiceNow implementations Proactively identify system inefficiencies and implement solutions to prevent recurring issues Collaborate with stakeholders across Engineering, Operations, Security, and Product teams to align ServiceNow capabilities with business requirements Be a mentor for colleagues and help promote knowledge-sharing To be successful in this role you have: Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AIs potential impact on the function or industry. Bachelors degree in Computer Science, Information Technology, or related field 5+ years on ServiceNow Development experince Strong proficiency in backend development using JavaScript Working knowledge of RESTful APIs, web services, and integration methodologies Experience with agile development methodologies and tools Strong problem-solving skills with the ability to adapt quickly to changing technical requirements Excellent communication skills with ability to translate technical concepts to non-technical stakeholders Preferred Qualifications Proven ServiceNow platform development expertise ServiceNow Certified System Administrator certification mandatory ServiceNow Certified Application Development certification is mandatory and Implementation Specialist certification is preferred Experience implementing and maintaining ServiceNow integrations with DevOps tools (Jenkins, GitHub, Jira) Proven track record of analyzing operational data to identify trends and implement process improvements Experience with additional programming languages such as Python Demonstrated experience implementing DevOps practices, CI/CD pipelines, and release management workflows

We are seeking a Security Analyst with strong technical skills, client-facing experience, and a passion for mentoring junior resources. This role is ideal for professionals looking to lead cybersecurity services, build teams, and deliver impactful security solutions to clients across industries. Key Responsibilities Lead end-to-end cybersecurity services for assigned clients, including incident response, threat analysis, and vulnerability management Conduct risk assessments, prepare technical reports, and advise clients on improving their security posture Mentor and train junior analysts; create training programs, SOPs, and knowledge-sharing sessions Monitor SIEM, EDR, IDS/IPS tools to detect, analyze, and respond to threats Develop and maintain use cases, detection rules, and incident escalation protocols Coordinate with internal and external stakeholders to meet SLA targets Document incident timelines, root cause analysis (RCA), and ensure compliance with security frameworks like ISO 27001, NIST, or MITRE ATT&CK Requirements bachelors degree in Computer Science / Cybersecurity / Information Technology 3 7 years in cybersecurity operations 2+ years in a client-facing or leadership/mentoring role Technical Skills Hands-on experience with SIEM tools (eg, Splunk, QRadar) Working knowledge of Vulnerability Scanners (eg, Nessus, Qualys) Proficiency in Incident Detection, Threat Hunting, EDR Tools Scripting skills (Python / PowerShell) is a plus Key Competencies Strong leadership and team-building skills Excellent verbal and written communication Analytical mindset and proactive problem solver Ability to manage clients, priorities, and incidents efficiently

The CyberProof-provided Vulnerability Remediation Managers will perform the following key tasks: Program Coordination Collaborate with internal vulnerability management and remediation teams Manage remediation tracking for critical/high vulnerabilities from scanning tools. Remediation Governance Facilitate weekly/bi-weekly remediation status meetings with IT stakeholders. Track remediation owners, timelines, and blockers. Follow existing remediation SLAs and risk acceptance/exemption processes. Create and triaging new vulnerability findings. Reporting Generate and distribute dashboards/reports on remediation progress. Highlight overdue vulnerabilities and SLA breaches. Process Improvement, Assist in refining vulnerability intake, triage, prioritization, and closure processes. Stakeholder Management Coordinate across Security, Infrastructure, Application, and GRC teams. Support audit and compliance-related evidence collection (eg, for PCI-DSS, HIPAA, etc).

Position: Senior Security Consultant - DevSecOps Job ID: SCD_001 Location: Malad, Mumbai/ Dombivli, Thane Your responsibilities as a Senior Security Consultant - DevSecOps: Source code review with Checkmarx tool and need to manually validate and remove the false positive Linux and IIS server management. Upgradation of tools such as Twistlock, Whitesource and Checkmarx. Need to validate the vulnerability vulnerabilities and follow up with the respective developers for the closures. Integration of new project with CICD tools such as GOCD to Checkmarx/ Whitesource. Docker, Pipeline, Tools etc, Troubleshooting. Creation of Dockerfile for creating an image. Knowledge on Git, Bitbucket, Jenkins, Artifactory, Twistlock, Whitesource, Checkmarx, Jenkins and GOCD. Skill sets we'require: Tools knowledge - Twistlock, Whitesource and Checkmarx. Experienced in container security, open-source libraries, source code reviews and hands on experience on Linux cli and IIS Server management. Knowledge about docker, Kubernetes and CICD tools such as Jenkins/GOCD. (GOCD is preferred) Pedigree and Experience: Bachelors degree in Computer Science, Information Technology, Cyber Security, or a related field. Experience of 2 - 4 years into Cyber Security Testing.

Monitoring and Maintenance: Continuously monitor server performance using monitoring tools. Perform routine maintenance, updates, and patching to ensure optimal functionality and security. Troubleshooting and Issue Resolution: Identify, diagnose, and resolve server-related issues, including hardware and software problems. Troubleshoot complex problems, potentially involving collaboration with other IT teams. Document issues, resolutions, and network changes for future reference and knowledge sharing. Implementation and Optimization: Implement new server infrastructure and configurations, often collaborating with other engineers. Optimize server performance and resource utilization to enhance efficiency. Security and Compliance: Implement and maintain security measures to protect server infrastructure. Ensure compliance with security policies and industry best practices. Documentation and Collaboration: Maintain accurate and up-to-date documentation of server configurations and procedures. Collaborate with other IT teams, such as network engineers and database administrators, to ensure seamless system integration. Support and On-call: Provide technical support to other IT team members and end-users regarding server-related issues. Participate in on-call rotations to provide after-hours support when needed. Skills and Qualifications: Strong understanding of server operating systems (Windows Server, Linux, etc) and cloud platforms. Proficiency in server hardware Knowledge of networking concepts and protocols (TCP/IP, DNS, HTTP/S, etc). Excellent troubleshooting and problem-solving skills. Strong communication, interpersonal, and customer service skills. Ability to work independently and as part of a team. Familiarity with network security best practices and security vulnerability scanning.

Summary Location: Hyderabad A ServiceNow Solution Architect plays a crucial role in designing, implementing, and optimizing ServiceNow solutions for organizations. Their responsibilities can be broadly categorized into different product SKU s ServiceNow platform engineering (on premise) with ITSM Modules including Service Request, Incident, Problem, Change, Rot and Configuration Management and security / regulatory disciplines About the Role Major accountabilities: Execute technology delivery strategy for business systems, platforms, and processes for a particular Business domain / Function. Partner with senior business stakeholders and TT Strategic Business Partners for demand analysis, solution proposal/evaluation, and funding estimates. Partner with business partners to ensure Technology Service/Solutions Delivery teams deliver products according to strategy with reuse across other areas. Ensure on time, within budget, compliant, secure, and quality delivery of portfolio for responsible function / service area. Ensure services, solutions, platforms, products are fit for purpose and achieve the desired business value and impact. Run efficient DevOps for platforms, products, or systems ensuring availability and optimal performance for responsible function / service area. Establish governance structure for projects, operations, etc with right stakeholder representation. Track, report, and deliver against agreed success factors and KPIs for various stakeholders for responsible function / service area. Follow industry trends and emerging practices to drive agility, speed, efficiency, and effectiveness. Ensure the overall user experience is considered when designing & deploying new solutions and services. Ensure adherence to Security and Compliance policies and procedures. Monitor and proactively manage the ServiceNow platform to ensure high availability and optimal performance. Troubleshoot and resolve any platform-related issues or outages promptly. Implement best practices to prevent system downtime and performance degradation. Collaborate with the platform & security teams to ensure the ServiceNow platform adheres to security standards and policies. Manage security controls, such as role-based access control, data encryption, and vulnerability assessments. Prepare the platform for audits, maintaining a secure and compliant environment. Lead a team of ServiceNow L3 and L2 consultants, administrators, and support staff. Coordinate and oversee the deployment of ServiceNow changes, updates, and enhancements. Manage and prioritize incident resolution and problem-solving efforts. Maintain and enhance ServiceNow configurations, workflows, and integrations as needed. Ensure that ServiceNow remains aligned with business requirements and objectives. Maintain comprehensive documentation for ServiceNow configurations, procedures, and incident resolutions. Collaborate with ServiceNow vendors and external partners to leverage their expertise and resources. Minimum Requirements: Bachelors degree in a related field (Computer Science, Information Technology, etc.) is preferred. 10-15 years of relevant experience in IT operations, with a minimum of 5 years of experience in ServiceNow administration. ServiceNow certifications, such as Certified System Administrator (CSA) or Certified Implementation Specialist (CIS), are mandatory . Strong leadership and team management skills. In-depth knowledge of IT service management (ITSM) and ITIL processes. Excellent problem-solving and analytical abilities. Strong communication and collaboration skills. Proficiency in ServiceNow development, scripting, and customization. Knowledge of database management and integration technologies

Senior Security Engineer BSH Household Appliances Manufacturing Private Limited | Full time | Bangalore Your responsibilities Manage and prioritize findings from SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), and SCA (Software Composition) forensic analysis AWS WAF Akamai DataDog, ELK, and incident response platforms. Your profile Perform security architecture reviews to identify and address potential vulnerabilities in system design. Hands-on experience with security tools such as SAST, DAST, SCA, vulnerability scanners, and WAFs. Work closely with development teams to ensure timely remediation of identified vulnerabilities.

Job Summary The role of Application (software) Security Engineer is a n entry- level , hands-on, engineering focused position, responsible for helping to foster a Secure SDLC and secure by design approach and practice throughout all our software engineering teams. The role holder must have a good combination of problem-solving and communication skills. She or he will support the Application Security , InfoSec, and Software engineering teams . The main responsibilities carried by this position vary between setting up code security scans, penetration test support , vulnerabilities triage and validation, and knowledge documentation and process review. Responsibilities Essential Functions/Responsibilities Configure and fine tune Application Security tests and vulnerability scans . Partner with Development teams to integrate security testing into their CI/CD pipelines and development processes. Partner with Senior Application Security engineers on Penetration tests set up and validation Ensure the processes and procedures of the area are documented and updated Do research and regularly consult with colleagues Deliver secure software development training ( e.g. OWASP Top10) Co-work with Security Analysts and other colleagues on software vulnerabilities and security issues: determine scope, severity and potential impact, recommend next steps, follow through with risk treatment and mitigation. Escalate issues, appropriately, to various teams and levels of authority inside the organization . Qualifications Minimum Qualifications Bachelor s degree in a relevant business or technical discipline is required . 3 + years of relevant work experience Demonstrated k nowledge of application security concepts, best practices and methods Experience with various application security tools including SAST, SCA, DAST Experience with Web Application security testing like Web Pentesting , Fuzzing, Automated test Even Better If You Have Experience securing cloud infrastructure and cloud applications . Working k nowledge of web, mobile, API, Microservices, network and security architectures and design patterns. Demonstrated ability to code in at least one programming language (python, javascript , typescript, go) Working k nowledge of AWS native security tools. Knowledge of current and emerging security technologies, threats and techniques for exploiting security vulnerabilities. Experience with methodologies and tools, for threat analysis of systems, such as threat modelling and software fuzzing. Experience with developer tools and environments, project management and bug tracking systems. Experience in implementing and integrating security tools into CI/CD. EEO Commitment EEO Commitment #LI-NB1

About us:Hiver gives teams the simplest way to deliver outstanding and personalized customer service As a customer service solution built on Gmail, Hiver is intuitive, super easy to learn, and delightful to use Hiver is used by thousands of teams at some of the best-known companies in the world to provide attentive, empathetic, and human service to their customers at scale We re a top-rated product on G2 and rank very highly on customer satisfaction At Hiver, we obsess about being world-class at everything we do Our product is loved by our customers, our content engages a very wide audience, our customer service is one of the highest rated in the industry, and our sales team is as driven about doing right by our customers as they are by hitting their numbers We re profitably run and are backed by notable investors K1 Capital led our most recent rou of $27 million Before that, we raised from Kalaari Capital, Kae Capital, and Citrix Startup Accelerator Opportunity:Hiver is currently seeking a dedicated Senior Security Engineer to join our Information Security team In this role, you will play a crucial part in ensuring the security and compliance of our systems and data Your responsibilities will encompass reviewing and updating documentation, researching and evaluating security applications, assisting with web content management, and contributing to compliance monitoring and investigations What you will be working on? * Periodic review of Cloud and overall Security posture of Hiver * Advocate security and secure practices throughout Hiver * Perform technical security assessments and and infrastructure audits * Handle information security incidents and data breaches * Work with all business functions to make sure all security risks are effectively managed * Assist the Information Security team with external security audits * Perform privacy assessments as part of ISO, SOC2, GDPR, HIPAA, EU Data Protection etc What we are looking for ? * A minimum of 3-5 years of professional experience in information security practices, with at least 2 years specializing in Cloud security in Product Based companies and related fields (GRC, VAPT, Security operations Centre) * Strong understanding of one of major cloud platforms (AWS, GCP, Azure) and their security offerings * Expertise in cloud security best practices, compliance requirements (e g , ISO 27001:2022, SOC 2, HIPAA), and security frameworks (e g , NIST Cybersecurity Framework) * Conduct regular security assessments and vulnerability scans of cloud environments, identifying and remediating potential risks * Collaborate with stakeholders across the organization (IT, Security, DevOps, Engineering, etc ) to ensure secure cloud adoption and operations

Job Role: Vulnerability Management Job Location: Navi Mumbai Work Mode: Work from office Exp Level: 2 to 5 years Educational Qualification I. B.E / B. Tech in: a) Cyber Security Computer Science/Computer Science & Engineering b) Information Technology/ Software Engineering/ c) Electronics & Communications Engineering d) Or equivalent degree in relevant discipline II. MCA or BCA or M.Tech / M.Sc/ B.Sc in: a) Computer Science b) Information Technology c) Electronic & Communications Engineering Required Certification Mandatory (Any-one): - Certified SOC Analyst (EC- Council), Computer Hacking Forensic Investigator (EC- Council), Certified Ethical Hacker (EC-Council), CompTIA Security+, CompTIA CySA+ (Cybersecurity Analyst), GIAC Certified Incident Handler (GCIH) or equivalent. Product Certifications (Preferred): - Product Certifications on SOC Security Tools such as SIEM/Vulnerability Management/ DAM/UBA/ SOAR/NBA etc. Key Roles & Responsibilities Vulnerability assessment & Penetration testing (VAPT) as per the banks regulatory and operational requirements. External Penetration Testing of Bank’s internet facing Web, Mobile, Web services, Network and Infrastructure on periodic basis as per Bank’s provided schedules. Maintain an up-to-date inventory of IT assets. Regularly scan and assess systems for vulnerabilities. Vulnerabilities prioritization based on the risk and potential impact. Continuous breach attack simulations SCD (Secure Configuration Document) verifications. Anti-Malware & Malicious Content Scan Near real time detection and monitoring of emerging vulnerabilities Define and measure metrics to track effectiveness of VM program.

SecOps & GRC ServiceNow Senior Functional Consultant Role: Senior ServiceNow® Functional Consultant Grade: G8 Experience: 10 + years 1. Role Overview ServiceNow SecOps and GRC Functional Consultant specializes in implementing and optimizing ServiceNow’s Security Operations (SecOps) and Governance, Risk, and Compliance (GRC) modules to enhance an organization’s security posture and compliance frameworks. Below is a detailed job description outlining the typical responsibilities, required qualifications, and desired skills for this role: 2. Job Description: • Client Engagement and Consultation: o Lead client engagements to assess current security and compliance processes. o Conduct workshops to gather business, functional, and technical requirements. o Translate client needs effective ServiceNow solutions. • Solution Design and Implementation: o Design and implement ServiceNow SecOps and GRC solutions, ensuring alignment with best practices. o Design custom integrations to meet specific client requirements. o Design and implement modules such as Vulnerability Response, Security Incident Response, Risk Management, and Compliance Management • Project Management and Delivery: o Lead ServiceNow implementations, ensuring projects are delivered on time and within scope. o Collaborate with cross-functional teams, including business analysts, developers, and project managers. o Provide mentorship to junior consultants and oversee development activities. • Testing and Quality Assurance: o Develop and execute test plans to ensure solutions meet client expectations. o Identify and resolve issues during the testing phase. o Ensure solutions adhere to quality standards and best practices. • Training and Support: o Conduct training sessions for end-users and administrators. o Provide ongoing support and maintenance post-implementation. o Assist clients in adopting new features and functionalities."

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. We are currently seeking an experienced professional to join our team in the role of Lead consultant specialist In this role you will: Hunting for malicious or anomalous activity across the enterprise, using existing tools. Acting in co-ordination with GCO staff to lead the development and implementation of an advanced analysis and search capability focused on identifying potentially sophisticated APT and insider threat activities within the organization. Researching new and existing threat actors and associated tactics, techniques and procedures (TTPs); developing a detailed understanding of their potential impact to the organization, providing recommended solutions for improving our defensive and detective capability. Collaboration with the wider Cybersecurity functions, e.g., Red Team, to develop hypotheses for new attack techniques and evasion methods. Coordinating threat hunting activities, leveraging intelligence from multiple internal and external sources. Reviewing incident and penetration testing reports and corresponding logs, to identify gaps in our detection capability and provide recommendations to improve them. Providing expert analytic investigative support on large scale and complex security incidents. Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes Training, developing, mentoring, and inspiring colleagues across the function in area(s) of specialism, strengthening Cybersecurity Operations capabilities. Represent HSBC Global Cybersecurity Operations at internal awareness and external cybersecurity forums. Collaborate with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose. Identify processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources. Requirements To be successful in this role, you should meet the following requirements: Excellent investigative skills, insatiable curiosity, and an innate drive to win. Instinctive and creative, with an ability to think like the enemy. Strong problem-solving and trouble-shooting skills Deep knowledge of hacker culture Developed external peer network for sharing intelligence. Self-motivated and possessing of a high sense of urgency and personal integrity. Excellent understanding of HSBC cyber security principles, global financial services business models, regional compliance regulations and laws. Excellent understanding and knowledge of common industry cyber security frameworks, standards, and methodologies, including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Proven experience in identifying and responding to advanced attacker methodologies both within the corporate environment as well as external attack infrastructures, ideally with offensive experience and / or deception environment development (tripwire systems, honeypots, honey-token/accounts, etc.) using open source, vendor purchased and bespoke/in-house developed solutions. Experience in computer forensics, vulnerability analysis, cyber security analysis, penetration testing and/or network engineering. Highest level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors Expert level knowledge of scripting, programming and/or development of bespoke tooling or solutions to solve unique problems. Expert Knowledge and technical experience of 3rd Party Cloud Computing platforms such as AWS, Azure and Google

We are seeking a driven and dynamic Sponsorship Sales Executive to spearhead commercial growth across our international cybersecurity conferences. In this role, you ll be responsible for prospecting, pitching, and closing sponsorship deals for four high-impact, paid-attendance events annually , across the U.S., Europe, and India. This is a high-opportunity role ideal for a junior to mid-level B2B sales professional with the drive to scale an already-profitable sponsorship business. You ll own relationships with tech vendors, security solution providers, and recruitment-focused brands looking to connect with cybersecurity professionals, practitioners, and product buyers. You will be the bridge between Payatu s world-class conferences and the industry leaders who want to be part of them What You ll Do Design and implement a strategic sales plan aligned with event goals and audience profiles Identify potential sponsors based on each conference s unique audience and value proposition, targeting security vendors, product companies, training firms, and CISO-aligned brands Drive consistent revenue by selling sponsorship packages, exhibition booths, speaking slots, and branding opportunities Maintain and grow key sponsor relationships with regular check-ins and ROI-driven engagement Provide feedback on pricing, packaging, and event enhancements based on client input Stay informed about industry trends, emerging tech players, and competitor event Use CRM (HubSpot\/Salesforce) to log activities, report forecasts, and analyze performance What You Bring Skills & Experience: 2-5 years of B2B sales experience, preferably within the enterprise tech\/cybersecurity event industry Background selling to cybersecurity vendors or CISO-focused organizations is a strong plus Strong research and digital prospecting abilities Proficiency in CRM tools (e.g., HubSpot, Salesforce) Skills & Attributes: Self-starter who thrives in an independent, high-accountability environment Exceptional communication and negotiation skills Organized, persistent, and results-driven Passion for the cybersecurity industry or willingness to quickly become fluent in it Why Join ISMG Payatu? Be a part of a globally recognized cybersecurity brand with strong market demand Join a purpose-driven company at the intersection of cybersecurity innovation and education Drive real impact in a high-growth business with clear runway for earnings and advancement Work with a supportive, passionate team that values creativity and results. Ready to help shape the future of cybersecurity events? Apply now and be part of something impactful. Location: On-site at our office in Mumbai. Compensation: from 15 to 20 LPA depending on experience level.

About the Role The Staff Software Engineer on the Vulnerability Coverage team will help set technical direction for delivering accurate vulnerability coverage to our customers in a timely manner. They will serve as an expert and owner for a portion of the overall coverage portfolio, participate in architectural discussions and successfully deliver new capabilities and coverage from conception to release. In addition to hands-on development, they will work closely with the product management team, mentor engineers and contribute to roadmap planning. The Staff Software Engineer s role is responsible for providing technical leadership and does not have people-management responsibilities. In this role, you will: Build, maintain, and release high-quality vulnerability coverage by becoming an expert in specific areas of our security coverage portfolio. Build, maintain and release new services and plugins for generating new vulnerability coverage Be involved in driving the design and planning of upcoming features, our engineers are first class stakeholders in all parts of the development process Partner with internal teams such as Product Management to ensure our customer needs are met Build a deep understanding of the processes involved in maintaining and improving our vulnerability coverage portfolio The skills you ll bring include: A minimum of 8 years experience in software development using Python Experience working with Java, Spring and Databases is a plus Experience with Cloud based deployments e.g. AWS / GCP / Azure Experience with IaC e.g. Terraform / Ansible Experience with virtualization and containers Familiarity with CI/CD pipelines such as Jenkins and proficiency with version control systems such as GitHub BEng, BSc or related technical field Ability to plan, organize and drive a complex project across multiple organizations Excited by technology, curious and eager to learn, with the ability to mentor junior team members The attitude and ability to thrive in a high-growth, evolving environment Collaborative team player who has the ability to partner with others and drive toward solutions Strong creative problem solving skills Solid communicator with excellent written and verbal communications skills both within the team and cross functionally Demonstrable experience of delivering complex solutions to customers Experience with cloud services and infrastructure such as AWS would be advantageous We know that the best ideas and solutions come from multi-dimensional teams. That s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don t be shy - apply today. About Rapid7 At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what s possible and drive extraordinary impact. Here, we re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever s next. Join us and bring your unique experiences and perspectives to tackle some of the world s biggest security challenges. #LI-SJ1 Security and Compliance Rapid7 is committed to keeping customers secure. As a first line of defense, all employees are expected to uphold the highest standards of security and privacy, ensuring the protection of sensitive information and compliance with relevant regulations.

Requirements: Bachelors degree in Computer Science, Information Technology, or a related field. Strong technical knowledge in areas such as Threat Intelligence, DDOS, Security Monitoring, and SIEM tools. Hands-on experience in vulnerability management, patching (OS & applications), and remediation practices. Proficiency in TCP/IP, networking concepts, and security technologies (e.g., firewalls, proxies, antivirus, IDPS). Experience with event correlation, incident response, and malware/threat analysis. Strong scripting skills and ability to automate security processes. Excellent communication skills and ability to work collaboratively in high-pressure situations. Preferences: Master’s degree in Information Systems or a related field. SIEM, Networking/Router, or Vulnerability Management Tool certifications/training. Exposure to data center or cloud security environments (certifications are a plus). Experience in penetration testing and security assessments. Familiarity with implementing and managing VPNs, secure gateways, and encrypted communications. Proven ability to conduct security research and recommend effective enhancements. Demonstrated passion for cybersecurity and a strong drive to stay updated with industry trends.

About the Role The Manger, Software Engineering will lead the Vulnerability Coverage team who are responsible for delivering vulnerability content to customers, ensuring accuracy and reliability. They will work closely with our product management team to align on roadmaps, prioritize new coverage, and drive long-term improvements with automation pipelines. Additionally, they will drive operational excellence, collaborate with security researchers and manage delivery of coverage for emerging threats. In this role, you will: Directly manage a team of Software Engineers, coaching and mentoring team members, including scoping work and prioritising tasks Mentor engineers and help grow their skills, identify growth areas, set expectations and provide feedback Manage projects and socialising progress across engineering teams and leadership Organize cross functional deliverables by creating project plans, access and document risks, communicate status, create staffing plans. Keep a keen eye on quality, and continue to drive improvements to testing, monitoring and alerting Work cross functionally with PM, UX and Engineering to address specific customer pain points and to think strategically about the future direction of the product Work closely with other managers and teams across the product to align efforts and initiatives The skills you ll bring include: 2-3 years experience in managing software engineering teams with a track record in developing and mentoring software engineers at all levels A demonstrable passion for all things software engineering with the ability to read design documents, a solid understanding of the software development lifecycle and the ability to read code BEng, BSc or related technical field Strong project management and program management skills with experience in managing multiple, high-impact projects A customer centric approach with the ability to drive that throughout your teams, understanding the customers needs and drivers and putting the customer at the forefront of all decision making A solid pulse on the security landscape would be an added benefit We know that the best ideas and solutions come from multi-dimensional teams. Teams reflecting a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don t be shy - apply today. About Rapid7 At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what s possible and drive extraordinary impact. Here, we re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever s next. Join us and bring your unique experiences and perspectives to tackle some of the world s biggest security challenges. Experience in communicating with variety of audience e.g. Executives, customers Strong cross-functional skills, with the ability and desire to build relationships with other teams including Product Management, UX and engineering teams to achieve broader company objectives Capable of managing through high-intensity situations when they arise #LI-SJ1 Security and Compliance Rapid7 is committed to keeping customers secure. As a first line of defense, all employees are expected to uphold the highest standards of security and privacy, ensuring the protection of sensitive information and compliance with relevant regulations.

The India Climate Collaborative (ICC) is hiring a Program Manager - Heat to lead the implementation of our emerging strategy on extreme heat resilience and climate-friendly cooling. This is a critical mid-level role focused on converting ideas into action driving program execution, building a domestic donor coalition, and strengthening cross-sector partnerships. The Program Manager will oversee the day-to-day delivery of ICC s heat program, coordinating stakeholders, managing key workstreams, organizing high-impact events, and ensuring alignment across internal teams. You will serve as a key bridge between knowledge, philanthropy, and action helping ICC translate insights into scalable solutions for heat resilience and equitable cooling in India. You will report to the Intelligence & Advisory Team Lead and collaborate closely with ICC s engagement, philanthropy, communications, and operations teams. Key Responsibilities 1. Programme Delivery & Implementation Support the execution of ICC s heat program strategy, translating priorities into clear workplans and deliverables. Manage the day-to-day operations of the program, including budgeting, timeline tracking, reporting, and outcome monitoring. Ensure strong project management discipline across workstreams such as heat vulnerability storytelling, sector mapping, or donor advisory services. 2. Donor Coalition Building Support and coordinate a donor coalition focused on heat and cooling helping align funders around shared priorities and catalyse new philanthropic capital. Develop clear investment cases, knowledge briefs, and donor-facing content to support engagement and stewardship. Serve as a relationship manager for coalition members, tracking interests, reporting progress, and facilitating collaboration. 3. Partnership Development & Stakeholder Engagement Build and manage relationships with key stakeholders across philanthropy, civil society, government, and the private sector. Identify and activate new partnerships that can unlock technical expertise, local implementation capacity, or policy leverage. Represent ICC in external dialogues and multilateral platforms to spotlight heat-related priorities and position ICC as a credible sector convener. 4. Convenings & Events Management Plan and deliver high-functioning events, including roundtables, bilateral meetings, thematic convenings, and workshops. Oversee event operations developing agendas, managing logistics, coordinating with speakers and attendees, and ensuring high-quality collateral and follow-up. Work with the communications team to showcase outcomes and build visibility for ICC s heat work across networks. 5. Research & Knowledge Management Commission or conduct focused research (eg, policy mapping, donor landscape, solution assessments) to inform ICC s strategy and offerings. Synthesize findings into clear, actionable knowledge products tailored for different audiences especially donors and implementation partners. Track developments in climate, urban, and cooling policy at national and international levels to keep ICC s program responsive and relevant. 6. Cross-Functional Collaboration Work across teams (engagement, communications, finance, operations) to ensure coherence, clarity, and executional excellence. Help coordinate aligned efforts across other ICC program verticals (eg, urban resilience, public health, energy, livelihoods). Proactively manage competing priorities and anticipate upcoming tasks to keep ICC s heat programming on track. Requirements 7-10 years of experience, and significant demonstrable experience in the climate/ adaptation/ resilience space. Added advantage if experience working on heat stress/ DRR. Proficiency in MS Office tools like Word, PowerPoint, Excel etc Effective communication and interpersonal skills (both written and verbal) Ability to manage external stakeholders, including partners and technical advisors Ability to process information from multiple sources, and compile and articulate in a presentable manner

We are hiring AWS DevOps Engineer WAF & FinOps Specialist.. AWS DevOps Engineer WAF & FinOps Specialist - Aabasoft Technologies Pvt. Ltd. AWS DevOps Engineer WAF & FinOps Specialist We are looking for a highly skilled AWS DevOps Engineer with deep expertise in network security , Web Application Firewall (WAF) implementations , and cloud financial management (FinOps) . The ideal candidate will design and manage secure, scalable, and cost-optimized AWS network architectures while ensuring effective protection against cyber threats and aligning with best-in-class cloud financial governance practices. Design, deploy, and manage WAF solutions across AWS and hybrid infrastructures. Configure and administer core AWS networking services including VPCs, Route Tables, Transit Gateway, VPN, and Direct Connect. Collaborate with DevOps, Security, and Infrastructure teams to enforce zero-trust architectures and granular traffic policies . Monitor, assess, and respond to application-layer threats using AWS WAF, Shield, and Firewall Manager. Implement FinOps principles to optimize cloud networking costs and promote cost transparency. Develop and maintain dashboards for network traffic analysis and cost reporting . Partner with cross-functional teams to forecast network usage and reduce data transfer/inter-region costs. Conduct vulnerability assessments and ensure compliance with security frameworks (CIS, NIST, etc.). Automate deployment of network configurations and security policies using Terraform , CloudFormation , or similar IaC tools. Advanced knowledge of AWS networking (VPC, NACLs, Security Groups, Transit Gateway, PrivateLink). Hands-on experience with AWS WAF , AWS Shield , and Firewall Manager . Deep understanding of cloud-native networking and security architectures . Experience in applying FinOps best practices for cost optimization in AWS. Familiarity with AWS billing tools including Cost Explorer, cost allocation tags, and budgets. Experience with CDNs such as CloudFront and application-layer security integrations. Proficiency in scripting languages (e.g., Python , Bash ) and Infrastructure as Code tools. Understanding of regulatory compliance standards (ISO 27001, PCI-DSS, HIPAA) is a plus. AWS Certified Advanced Networking Specialty AWS Certified Security Specialty FinOps Certified Practitioner (FinOps Foundation)

Job Title: Principal Engineer Security & Cloud Engineering (Product & SC) Location: Hybrid Experience: 12+ years Employment Type: Full-time We are looking for a Principal Engineer to lead Security and Cloud Engineering efforts for our enterprise Java product with both On-Prem and SaaS deployments. This is a hands-on leadership role driving secure SDLC practices, DevSecOps automation, container security, and platform hardening. You will work closely with engineering, DevOps, QA, and compliance teams to protect the product and infrastructure from vulnerabilities and ensure compliance. Responsibilities Application & Infrastructure Security - Lead secure coding practices and integrate SAST, DAST, Penetration Testing, and vulnerability scanning into the development lifecycle. - Analyze and remediate findings from tools like SpotBugs, Polaris Synopsys, Acunetix, and custom security assessments. Threat Modeling & Risk Mitigation - Perform threat modeling, assess security risks including SQL injection, XSS, CSRF, and privilege escalation. - Guide teams on secure implementation patterns and anti-patterns. Cloud & Container Security - Harden Docker, Kubernetes, and SaaS infrastructure for multi-tenant, secure-by-design deployments. - Implement policies for image scanning, secrets management, network segmentation, and runtime security. Security Automation & DevSecOps - Automate security checks in CI/CD pipelines using tools like GitLab CI, Jenkins, SonarQube, etc. - Promote Infrastructure as Code (IaC) security and integrate tools for Terraform/Helm validations. Governance & Compliance - Define and enforce security standards aligned with OWASP, CIS Benchmarks, and industry best practices. - Maintain documentation and assist with security audits and compliance requirements. Mentoring & Collaboration - Mentor engineers on secure design, coding, and deployment practices. -Collaborate with product owners and engineering managers to drive secure feature development. Qualifications Required Qualifications . 12+ years of experience in application security, DevSecOps, or cloud security within enterprise Java environments. Strong knowledge of penetration testing, static/dynamic analysis, and tools like SpotBugs, Polaris, Acunetix, OWASP ZAP, etc. Expertise in secure coding, vulnerability assessment, and remediating common issues like SQL injection, XSS, and insecure deserialization. Hands-on experience with Docker, Kubernetes, Helm, and cloud-native security tooling. Familiarity with SaaS security concerns: multi-tenancy, access isolation, data encryption, and secure APIs. Experience integrating security into CI/CD pipelines and using GitOps principles. Preferred Qualifications Certifications such as OSCP, CEH, CISSP, or CKS (Certified Kubernetes Security Specialist). Prior experience with security automation, policy-as-code, or container scanning platforms (e.g., Trivy, Aqua, Prisma). Knowledge of threat modeling frameworks (e.g., STRIDE) and secure architecture principles. Exposure to Gen AI tools for secure code analysis, vulnerability triaging, or automated documentation. What We Offer Opportunity to influence product direction and architecture. A collaborative and learning-focused environment. Access to modern tools and Gen AI platforms. Competitive salary and performance bonus Health insurance Hybrid work model Company Description At Quest, we create and manage the software that makes the benefits of new technology real. Companies turn to us to manage, modernize and secure their business, from on-prem to in-cloud, from the heart of the network to the vulnerable endpoints. From complex challenges like Active Directory management and Office 365 migration, to database and systems management, to redefining security, and hundreds of needs in between, we help you conquer your next challenge now. We re not the company that makes big promises. We re the company that fulfills them. We re Quest: Where Next Meets Now. Why work with us! -Life at Quest means collaborating with dedicated professionals with a passion for technology. -When we see something that could be improved, we get to work inventing the solution. -Our people demonstrate our winning culture through positive and meaningful relationship. -We invest in our people and offer a series of programs that enables them to pursue a career that fulfills their potential. -Our team members health and wellness is our priority as well as rewarding them for their hard work. Quest is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. Come join us. For more information, visit us on the web at Quest Careers | Where next meets now. Join Quest. Job seekers should be aware of fraudulent job offers from online scammers and only apply to roles listed on quest.com/careers using our applicant system. Note: We do not use text messaging or third-party messaging apps like Telegram to communicate with applicants, so please exercise caution if you are approached in this way and only interact with people claiming to be Quest employees if they have an email address ending in @quest.com or @oneidentity.com #LI-SR1

The Sr Tech Representative, IT OPs is responsible for daily production work tasks and provides advanced system-level support of multi-user operating systems, hardware and software tools, including installation, configuration, maintenance, and support of these systems. This position demonstrates excellent knowledge of systems analysis for hardware and software. Essential Functions/Core Responsibilities Coordinates as smart hands with different portfolio and technical workgroups Provide telephony support in performing installation and troubleshooting on desktops, voice and telephone applications/hardware Perform hardware and software upgrades, deployments Attend to break/fix engagement as required for technology related problems and issues received from both internal and external clients Prepare, maintain and submit reports and applicable records of computer hardware and software inventory by site and system Perform site maintenance and safety checks of assigned equipment Perform checks and ensure that antivirus definition, Microsoft patches are updated, vulnerability remediations Spend between 60% - 70 % of time clearing trouble tickets and work orders in a timely manner. Make necessary independent decisions to correct errors or discrepancies in trouble tickets as required Performs backup for the onsite servers

We are looking for fresh BE graduates who have specialized in Cybersecurity and are passionate about building a career in information security and ethical hacking. As a part of our security team, you will work on real-world projects involving vulnerability assessments, security testing, and risk analysis, while receiving hands-on training and mentorship. : Assist in performing vulnerability assessments and penetration testing of web and mobile applications. Support in security monitoring, log analysis, and incident handling. Contribute to the development of security policies, procedures, and documentation. Work closely with development and operations teams to identify and mitigate security risks. Stay updated on emerging threats and industry best practices in cybersecurity. Required Skills: Fundamental understanding of networking, firewalls, encryption, and authentication. Familiarity with OWASP Top 10, VAPT tools (e.g., Burp Suite, Nmap), and Linux commands. Knowledge of basic scripting (Python, Bash, or PowerShell) is a plus. Good communication and documentation skills. Passionate about security, ethical hacking, and solving complex problems. Preferred Certifications (Optional but Advantageous): CEH, CompTIA Security+, or any recognized security certification/course. Cyber Security-The role involves safeguarding; and applications from hackers and ensuring compliance with regulations. Graduates with strong technical knowledge; problem-solving skills; and attention to details. Required qualifications to be successful in this role: Bachelor of Engineering (BE) - 2024/2025 pass-outs (or most recent batch) Specialization in Cybersecurity, Information Security, or a related field Strong academic background with a focus on security-related coursework or projects. Education Criteria - 60% thru out the academics Skills: English Cyber Python

Full Stack Developer 6-8 years of working experience as a Full Stack Developer. Experience with Object Oriented Programming & Design, Object-relation Mapping (ORM), NodeJS, React.JS, JavaScript, PostgreSQL, C# .NET Framework 4.8, WCF, Web API, ASP.NET, WinForms, PL/ SQL. Designs, develops, tests, deploys and supports API-based systems focusing on industry best practices. Experience working on User Story development & enhancements, Incident & Request Management tasks. Good understanding for Agile scrum process Manages individual tasks and timelines under limited supervision. Seeking continuous quality improvements by performing Application Vulnerability remediation for supported systems. Assists in problem analysis and submits recommendations when appropriate. Proficiency in multiple tools of the full stack covering frontend frameworks, databases and deployments Demonstrated ability to quickly learn new technologies Ability to solve moderately complex problems, drawing upon technical experience, precedents, and judgement Strong communication skills, including ability to explain complex information in straightforward situations Hongkong Rotational Hours: Shift1 : Normal Business Hours: 7:00 AM to 4:00 PM IST Shift2: Normal Business Hours: 3:00 PM to 12:00 AM IST